W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > September to December 1997

Re: Basic Authentication behavior (PROTECTION_SPACE issue.)

From: Jim Gettys <jg@pa.dec.com>
Date: Tue, 18 Nov 1997 08:48:43 -0800
Message-Id: <9711181648.AA05861@pachyderm.pa.dec.com>
To: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com

This is in last call... The proposed text is at: 
http://www.ics.uci.edu/pub/ietf/http/hypermail/1997q3/0758.html 

While editing it into the draft, I noticed a nit or two...

Foteos Macrides wording says:

[START INSERT]---------------------------------------------------------
            A user agent SHOULD assume that all paths at or deeper than
            the depth of the last symbolic element in the path field
            of the Request-URI also are within the protection space
            specified by the Basic realm value of the current challenge,
            and MAY send the corresponding Authorization header with
            requests for resources in that space without receipt of
            another challenge from the server.
[END INSERT]-----------------------------------------------------------

I believe user agent should be client, rather than the more restrictive
user agent in this context.  And the sentence was running on...

My revised text is:

"A client SHOULD assume that all paths at or deeper than the depth of the 
last symbolic element in the path field of the Request-URI also are within 
the protection space specified by the Basic realm value of the current 
challenge. A client MAY send the corresponding Authorization header with 
requests for resources in that space without receipt of another challenge 
from the server."

			- Jim
Received on Tuesday, 18 November 1997 08:53:37 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:33:03 EDT